Scroll Top
Request a Demo

Data Security

Secure your data with a high level of confidence.

Talk to an Expert
Home » Why Choose Us » Data Security

Certifications and Protocols

hitrust_certified

HITRUST CSF Certified status demonstrates that the MDaudit system has met key regulations and industry-defined requirements and appropriately manages all security controls and associated risks.

tx_ramp_certified

MDaudit has also achieved Level 2 certification for the Texas Risk and Authorization Management Program, or TX-RAMP, which provides a standardized approach to security assessment, authorization, and continuous monitoring of cloud computing services used by Texas state agencies, including university healthcare systems.

star_level_one

MDaudit is additionally Level 1 C-Star certified – the industry’s most powerful cloud security assurance program. STAR stands for Security, Trust, Assurance and Risk, and is a publicly accessible registry that documents the security and privacy controls provided by popular cloud computing offerings.

CORL Cleared

MDAudit is CORL Cleared which represents the gold standard in vendor qualification and has met rigorous criteria for excellence in quality, security, and regulatory compliance.

HIPAA Compliant

We are committed to protecting patient data per HIPAA Privacy Rule guidelines. We have instituted physical, network, and process security precautions in our MDaudit SaaS platform to ensure your protected data is secure.

Secure AWS Cloud Infrastructure

The MDaudit platform uses Amazon Web Services (AWS) and its utility-based cloud services to process, store, and transmit PHI. AWS services and data centers have multiple layers of operational and physical security to ensure the integrity and safety of patient data. MDaudit has a Business Associate Agreement (BAA) contract with AWS. The BAA is required by HIPAA regulations when using a Cloud Service Provider (CSP) and ensures that AWS appropriately safeguards PHI. The contract also clarifies and limits the permissible use and disclosure of PHI by AWS.

Secure Data Storage

MDaudit ensures PHI protection for stored data with data encryption, secured databases, and reliable backup procedures. To gain access to MDaudit, users must be authenticated using unique, application-specific credentials.

Multi-Factor Authentication & Single Sign-On

MDaudit requires multi-factor authentication, which further protects against unwanted user access, helping to prevent security breaches that can harm employees, patients, and the trusted reputation of your organization. To provide the highest level of user authentication and security in MDaudit, Single Sign-On (SSO) authentication is also a security feature. This best-in-class identity and access management solution ensures our platform is one you can continue to trust when managing user access and authentication.

Continuous Risk Assessments

We have recently invested in a 3rd party risk assessment security platform to scan our 3rd party vendors continuously against web threats and vulnerabilities. We also perform two penetration tests per year to assess and fix evolving threats throughout the year.